crans
/
ansible
mirror of http://gitlab.adm.crans.org/nounous/ansible.git
19
0
Fork 0
Code Issues Projects Releases Wiki Activity
ansible/roles/keepalived/templates/keepalived/keepalived.conf.j2

162 lines
4.8 KiB
Django/Jinja
Raw Blame History

This file contains invisible Unicode characters!

This file contains invisible Unicode characters that may be processed differently from what appears below. If your use case is intentional and legitimate, you can safely ignore this warning. Use the Escape button to reveal hidden characters.

# {{ ansible_managed }}
global_defs {
notification_email {
root@crans.org
}
notification_email_from keepalived@crans.org
smtp_server smtp.adm.crans.org
}
{% if keepalived.proxy %}
vrrp_instance VI_DAUR4 {
# We don't own the IP address, which allows manual triggering of IP change when machine comes UP
# see man keepalived.conf.
{% if keepalived.proxy_primary %}
state MASTER
priority 150
{% else %}
state BACKUP
priority 100
{% endif %}
interface eth1
virtual_router_id 51
advert_int 2
authentication {
auth_type PASS
auth_pass {{ keepalived.proxy_password }}
}
virtual_ipaddress {
{{ keepalived.proxy_ipv4 }}/32 brd 138.231.143.255 dev eth0 scope global
}
}
{% endif %}
{% if keepalived.proxy %}
vrrp_instance VI_DAUR6 {
# We don't own the IP address, which allows manual triggering of IP change when machine comes UP
# see man keepalived.conf.
{% if keepalived.proxy_primary %}
state MASTER
priority 150
{% else %}
state BACKUP
priority 100
{% endif %}
interface eth1
virtual_router_id 51
advert_int 2
authentication {
auth_type PASS
auth_pass {{ keepalived.proxy_password }}
}
virtual_ipaddress {
{{ keepalived.proxy_ipv6 }}/64 dev eth0 scope global
}
}
{% endif %}
{% if keepalived.radius %}
vrrp_instance VI_RAD4 {
# We don't own the IP address, which allows manual triggering of IP change when machine comes UP
# see man keepalived.conf.
{% if keepalived.radius_primary %}
state MASTER
priority 150
{% elif keepalived.radius_secondary %}
state BACKUP
priority 100
{% else %}
state BACKUP
priority 50
{% endif %}
interface {{ keepalived.if_adm }}
virtual_router_id 52
advert_int 2
authentication {
auth_type PASS
auth_pass {{ keepalived.radius_password }}
}
virtual_ipaddress {
{{ keepalived.radius_ipv4_adm }}/24 brd {{ keepalived.radius_broadcast_adm }} dev {{ keepalived.if_adm }} scope global
{{ keepalived.radius_ipv4_bornes }}/24 brd {{ keepalived.radius_broadcast_bornes }} dev {{ keepalived.if_bornes }} scope global
{{ keepalived.radius_ipv4_switches }}/24 brd {{ keepalived.radius_broadcast_switches }} dev {{ keepalived.if_switches }} scope global
}
}
{% endif %}
{% if keepalived.radius %}
vrrp_instance VI_RAD6 {
# We don't own the IP address, which allows manual triggering of IP change when machine comes UP
# see man keepalived.conf.
{% if keepalived.radius_primary %}
state MASTER
priority 150
{% elif keepalived.radius_secondary %}
state BACKUP
priority 100
{% else %}
state BACKUP
priority 50
{% endif %}
interface {{ keepalived.if_adm }}
virtual_router_id 52
advert_int 2
authentication {
auth_type PASS
auth_pass {{ keepalived.radius_password }}
}
virtual_ipaddress {
{{ keepalived.radius_ipv6_adm }}/64 dev {{ keepalived.if_adm }} scope global
{{ keepalived.radius_ipv6_bornes }}/64 dev {{ keepalived.if_bornes }} scope global
{{ keepalived.radius_ipv6_switches }}/64 dev {{ keepalived.if_switches }} scope global
}
}
{% endif %}
{% if keepalived.router %}
vrrp_instance VI_ROUT {
# We don't own the IP address, which allows manual triggering of IP change when machine comes UP
# see man keepalived.conf.
{% if keepalived.router_primary %}
state MASTER
priority 150
{% else %}
state BACKUP
priority 100
{% endif %}
interface {{ keepalived.if_adm }}
virtual_router_id 53
advert_int 2
authentication {
auth_type PASS
auth_pass {{ keepalived.router_password }}
}
smtp_alert
virtual_ipaddress {
{{ keepalived.router_ipv4_serveurs }}/21 brd {{ keepalived.router_broadcast_serveurs }} dev {{ keepalived.if_serveurs }} scope global
{{ keepalived.router_ipv4_adm }}/24 brd {{ keepalived.router_broadcast_adm }} dev {{ keepalived.if_adm }} scope global
{{ keepalived.router_ipv4_bornes }}/24 brd {{ keepalived.router_broadcast_bornes }} dev {{ keepalived.if_bornes }} scope global
{{ keepalived.router_id_zayo }}/31 dev {{ keepalived.if_zayo }} scope global
{{ keepalived.router_id_zrt }}/24 brd {{ keepalived.router_broadcast_zrt }} dev {{ keepalived.if_zrt }} scope global
{{ keepalived.router_ipv4_filpub }}/24 brd {{ keepalived.router_broadcast_filpub }} dev {{ keepalived.if_filpub }} scope global
{{ keepalived.router_ipv4_srv }}/24 brd {{ keepalived.router_broadcast_srv }} dev {{ keepalived.if_srv }} scope global
{{ keepalived.router_ipv4_filnewserveurs }}/16 brd {{ keepalived.router_broadcast_filnewserveurs }} dev {{ keepalived.if_filnewserveurs }} scope global
{{ keepalived.router_ipv4_wifinewserveurs }}/16 brd {{ keepalived.router_broadcast_wifinewserveurs }} dev {{ keepalived.if_wifinewserveurs }} scope global
}
virtual_routes {
src {{ keepalived.router_ipv4_serveurs }} to 0.0.0.0/0 via 138.231.132.1 dev {{ keepalived.if_zrt }}
}
}
{% endif %}
Reference in New Issue View Git Blame Copy Permalink